RE: [External] : Direct DB Access for non IT users
Date: Wed, 22 Dec 2021 19:57:06 +0000
Message-ID: <SJ0PR10MB468652EA95E1CBBC51B84462A37D9_at_SJ0PR10MB4686.namprd10.prod.outlook.com>
Do deploy ORDS and build some views to surface the data with only select or read privs on the views.
SQL Developer Web – they connect to the mid tier, but not the database, with their database credentials.
From: oracle-l-bounce_at_freelists.org <oracle-l-bounce_at_freelists.org> On Behalf Of Jeff Chirco
Sent: Wednesday, December 22, 2021 2:24 PM
To: oracle-l-freelist <oracle-l_at_freelists.org>
Subject: [External] : Direct DB Access for non IT users
We've written a bunch of custom applications for various departments in our company but unfortunately because of time constraints screens were never developed to modify configuration type data, nor will time be given now. Things like lookup data, new codes or assignment data. The developers get those requests from the user and then write custom scripts to update the tables. A proposal is out to give SQL Developer access to dedicated individuals in the various departments to handle this type of work to alleviate the workload on the developers. As a DBA I am not fond of these people having direct database access to add and modify records. We are not talking about sensitive data or the main application data. I feel it is still a security issue, there is a chance they don't fully understand and do it wrong or leave table locks open.
Do any of you have these issues and how do you handle them? Given end users direct access?
Thanks,
Jeff
--
http://www.freelists.org/webpage/oracle-l
Received on Wed Dec 22 2021 - 20:57:06 CET